From 90d8219c8e9c9148ab9205f5cbf7ba583d9ef7e6 Mon Sep 17 00:00:00 2001
From: Viacheslav Hletenko <v.gletenko@vyos.io>
Date: Wed, 31 Aug 2022 18:32:05 +0000
Subject: policy-route: T4655: Remove default_action from template

Remove `default_action` from template "nftables-policy" as XML
policy route does not use it
Set default action 'accept' for policy route, as default action
'drop' must be used only for firewall and not related to the
policy route
---
 data/templates/firewall/nftables-policy.j2 | 2 --
 1 file changed, 2 deletions(-)

(limited to 'data/templates')

diff --git a/data/templates/firewall/nftables-policy.j2 b/data/templates/firewall/nftables-policy.j2
index 281525407..40118930b 100644
--- a/data/templates/firewall/nftables-policy.j2
+++ b/data/templates/firewall/nftables-policy.j2
@@ -25,7 +25,6 @@ table ip mangle {
         {{ rule_conf | nft_rule(route_text, rule_id, 'ip') }}
 {%             endfor %}
 {%         endif %}
-        {{ conf | nft_default_rule(route_text) }}
     }
 {%     endfor %}
 {% endif %}
@@ -50,7 +49,6 @@ table ip6 mangle {
         {{ rule_conf | nft_rule(route_text, rule_id, 'ip6') }}
 {%             endfor %}
 {%         endif %}
-        {{ conf | nft_default_rule(route_text) }}
     }
 {%     endfor %}
 {% endif %}
-- 
cgit v1.2.3